CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
11 Old Microsoft-Signed Linux UEFI Shims Could Let Attackers Bypass Secure Boot
Cybersecurity researchers have discovered 11 old, Microsoft-signed, Unified Extensible Firmware Interface (UEFI) applications that could be abused to bypass Secure Boot on most systems using the moder ...
-
security.nl
VS meldt misbruik van 18 jaar oud beveiligingslek in Cisco-routers
Een 18 jaar oude kwetsbaarheid in Cisco-routers is misbruikt bij aanvallen, zo waarschuwt het Amerikaanse cyberagentschap CISA. Het cross-site request forgery (CSRF)-lek in de webinterface, aangeduid ...
-
The Hacker News
U.S. Sanctions First VPN Service and Malware Cryptor Seller Over Ransomware Support
The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) has designated two individuals and a VPN service provider for enabling ransomware actors' and other cybercriminals' malicious act ...
-
The Cyber Express
RabbitMQ Vulnerability Exposes OAuth Secrets to Attackers
A newly disclosed RabbitMQ vulnerability, tracked as CVE-2026-5721, has raised concerns among enterprise users after researchers revealed that the flaw could allow unauthenticated attackers to retriev ...
-
Krypt3ia
Threat Intelligence Report: JADEPUFFER Agentic Ransomware and Automated Extortion
Report date: July 13, 2026Threat type: Agentic ransomware, destructive extortion, cloud and application compromiseActivity status: EmergingAttribution: UnattributedConfidence: ModeratePrimary source: ...
-
The Hacker News
⚡ Weekly Recap: ShareFile Threat, Citrix Bleed 2 Ransomware, AI Coding Attacks, and More
Somewhere right now, a security tool is quietly finding bugs faster than any human can fix them. That's supposed to be the good news. The catch is that the attackers have the same tools, pointed the o ...
-
cert.pl
Vulnerability in 4real ThemisNETPanel software
Vulnerability in 4real ThemisNETPanel software CVE ID CVE-2026-6847 Publication date 13 July 2026 Vendor 4real Product ThemisNETPanel Vulnerable versions All before 04.2026 Vulnerability type (CWE) Mi ...
-
The Hacker News
New MemGhost Attack Plants Persistent False Memories in AI Agents Through One Email
Give an AI assistant a memory and access to your inbox, and you hand an attacker a way to rewrite what it thinks it knows about you. A single email can trick that agent into saving a false "fact" abou ...
-
cert.pl
Vulnerabilities in GNU gawk software
Vulnerabilities in GNU gawk software CVE ID CVE-2026-40467 Publication date 13 July 2026 Vendor GNU Product gawk Vulnerable versions All through 5.4.0 Vulnerability type (CWE) Use After Free (CWE-416) ...
-
security.nl
Joomla-websites aangevallen via kwetsbare extensies meldt VS
Joomla-websites zijn het doelwit van aanvallen waarbij aanvallers kwetsbaarheden in de extensies iCagenda en Balbooa Forms misbruiken om PHP-code op de webserver uit te voeren, zo meldt het Amerikaans ...